Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/pVdmaB4LrMayDMnvmyDAp8aY98E.roa
File: pVdmaB4LrMayDMnvmyDAp8aY98E.roa (raw, json)
Hash identifier: zUKS+qt0yJvDAEf08ydOVYG9U4NfbZoiKzcDt+xWNxs=
Subject key identifier: A5:57:66:68:1E:0B:AC:C6:B2:0C:C9:EF:9B:20:C0:A7:C6:98:F7:C1
Certificate issuer: /CN=6d8e0e7e86775b415d3d5780ce4cfec0c859189c
Certificate serial: 042BA81D
Authority key identifier: 6D:8E:0E:7E:86:77:5B:41:5D:3D:57:80:CE:4C:FE:C0:C8:59:18:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/pVdmaB4LrMayDMnvmyDAp8aY98E.roa
Signing time: Sat 01 Jan 2022 15:56:05 +0000
ROA not before: Sat 01 Jan 2022 15:56:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212976
IP address blocks: 185.45.255.0/24 maxlen: 24
185.45.254.0/24 maxlen: 24
185.45.254.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69969949 (0x42ba81d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d8e0e7e86775b415d3d5780ce4cfec0c859189c
Validity
Not Before: Jan 1 15:56:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a55766681e0bacc6b20cc9ef9b20c0a7c698f7c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:5a:9e:b3:db:ec:a3:1a:b6:91:4f:15:4f:cd:
38:c4:78:98:91:96:fe:75:10:a4:d5:47:16:00:aa:
2f:37:ac:52:d2:97:89:2c:b1:4f:a1:a0:28:64:4e:
f8:45:73:d4:cd:12:b6:0f:6d:7c:4f:32:2e:e9:75:
da:ac:31:d0:e2:e9:37:04:22:26:3a:26:c2:7f:2b:
b0:6a:55:78:3f:ff:66:5d:eb:4d:b2:24:d8:4c:c9:
cc:4f:a9:d9:78:7d:0e:b5:c7:13:18:f6:81:80:71:
06:7d:db:45:bc:6a:3f:9c:a2:d1:5b:63:60:31:2f:
93:f4:64:fc:05:bc:65:c5:ff:f2:69:72:53:6f:d8:
f4:64:49:db:9c:98:13:c2:d4:90:9e:36:45:bf:f2:
a2:60:4e:74:69:e0:61:e2:b6:e4:d5:56:4d:be:a4:
53:3a:fa:2f:dd:66:b5:03:87:1c:21:0e:d3:04:25:
50:c7:40:97:59:2b:40:90:28:9b:11:b2:cc:5d:fa:
75:fe:0e:58:be:43:c4:a1:28:80:f1:98:38:6c:d1:
ba:b3:a8:48:ef:38:ac:be:f4:23:1c:c3:c4:b7:c6:
a1:1c:91:90:98:86:eb:fd:4a:c8:02:07:ae:79:15:
47:7a:b3:b2:2c:22:4f:f1:71:e7:92:83:e6:28:29:
ca:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:57:66:68:1E:0B:AC:C6:B2:0C:C9:EF:9B:20:C0:A7:C6:98:F7:C1
X509v3 Authority Key Identifier:
keyid:6D:8E:0E:7E:86:77:5B:41:5D:3D:57:80:CE:4C:FE:C0:C8:59:18:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/pVdmaB4LrMayDMnvmyDAp8aY98E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.45.254.0/23
Signature Algorithm: sha256WithRSAEncryption
02:bd:6e:c6:02:56:ea:df:08:b7:e5:a5:e4:4f:76:ae:d3:22:
7e:a4:95:75:17:43:06:87:58:61:73:59:70:02:e3:1e:5c:8e:
a1:12:ba:d9:16:89:88:3c:47:58:9e:18:2c:0e:9e:32:5e:7a:
fc:d1:69:cb:c1:9e:6d:7b:c2:58:4d:3c:a5:2c:7c:dc:77:4c:
55:24:64:bc:6e:13:09:98:4e:bb:64:0a:85:06:2b:64:4c:e2:
7d:e3:1f:f7:5c:ef:47:b4:1a:37:11:25:31:cd:23:74:1f:3d:
72:2f:92:33:78:fb:e5:e3:38:85:3b:59:7d:2b:74:9f:73:f8:
33:6f:5f:c7:4d:da:b4:b3:ae:8e:26:f7:01:68:88:39:39:21:
20:7a:91:cf:55:0c:23:2e:e5:3e:73:a1:f0:c6:a0:65:90:9c:
a3:4b:e3:e7:ea:0f:fd:a4:c4:c4:af:de:c8:c6:fd:a6:dd:e3:
d4:c8:bc:64:a8:97:a8:37:67:fb:bc:34:7e:e1:28:0c:cf:6b:
de:13:ca:bc:8c:13:15:34:65:be:fd:04:a4:ff:07:3b:66:dc:
ff:d6:be:52:77:7a:31:40:fb:50:0a:d9:36:95:07:e4:a7:7d:
36:03:89:f2:60:a1:2c:8d:94:0e:e1:ee:09:a5:cf:89:0e:22:
3a:99:4c:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:57 2025 by rpki-client